U.S. flag   An unofficial archive of your favorite United States government website
Dot gov

Official websites do not use .rip
We are an unofficial archive, replace .rip by .gov in the URL to access the official website. Access our document index here.

Https

We are building a provable archive!
A lock (Dot gov) or https:// don't prove our archive is authentic, only that you securely accessed it. Note that we are working to fix that :)

This is an archive
(replace .gov by .rip)

Validating the Integrity of Computing Devices: Preliminary Draft of SP 1800-34B Available for Comment
August 31, 2021

NIST’s National Cybersecurity Center of Excellence (NCCoE) has released for public comment a preliminary draft of Volume B—the second of three volumes—of the upcoming practice guide, Validating the Integrity of Computing Devices (NIST Special Publication (SP) 1800-34). The preliminary draft documents only laptop (end-user) computing devices. A later draft will document the server. Technologies today rely on complex, globally distributed and interconnected supply chain ecosystems to provide reusable solutions. Organizations are increasingly at risk of cyber supply chain compromise, whether intentional or unintentional. This practice guide can benefit organizations that want to verify that the internal components of their computing devices are genuine and have not been altered during the manufacturing and distribution process.

By releasing each volume of the practice guide first as a preliminary draft and later as a draft, we can share the progress made to date and use the feedback received to shape future volumes of the practice guide. Work continues on developing the final section of this publication.

Share Your Expertise

Please download the document and share your expertise with us to strengthen the preliminary draft of SP 1800-34 Volume B. The public comment period is open through September 29, 2021. See the publication details for a copy of the document and instructions for submitting comments. Volume B provides an overview of the project’s approach, architecture, and security characteristics. 

Created August 31, 2021